$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft File: cM9awmFE6NdDsVID4mwiBG-iQHo.mft (raw, json) Hash identifier: EtcoJNG81aLxOfuGFdlfB1yTKeWVdy30/HsPAE8WElc= Subject key identifier: 59:DB:1E:AB:86:36:38:E5:2D:46:DC:7B:AB:FE:B5:FE:D7:FF:79:D6 Authority key identifier: 70:CF:5A:C2:61:44:E8:D7:43:B1:52:03:E2:6C:22:04:6F:A2:40:7A Certificate issuer: /CN=A91DB128/serialNumber=70CF5AC26144E8D743B15203E26C22046FA2407A Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft Manifest number: D1 Signing time: Sun 19 May 2024 06:14:05 +0000 Manifest this update: Sun 19 May 2024 06:14:05 +0000 Manifest next update: Sun 26 May 2024 06:14:05 +0000 Files and hashes: 1: cM9awmFE6NdDsVID4mwiBG-iQHo.crl (hash: Ovyv1i3lTlNHdnJRp3UTLAeEkNNuEAJevjH4UfsCWT0=) 2: ABD7D9FCDDEC11EDB14EDA32C4F9AE02.roa (hash: ZkY0KzzTYIOlfe+QFFr6ughVl7NAzRhvIrPiqzSn17g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.crl rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB128/serialNumber=70CF5AC26144E8D743B15203E26C22046FA2407A Validity Not Before: May 19 06:14:05 2024 GMT Not After : May 26 06:14:05 2024 GMT Subject: CN=664998ad-7f1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:01:3d:1b:12:10:bc:89:a3:8b:78:f8:77:e4: 4d:98:4b:2c:d7:b9:63:08:56:0f:54:d5:09:62:af: a4:01:6d:20:99:bb:6b:6d:3f:e2:3d:73:c3:27:a9: 60:43:80:e2:6f:f3:15:ea:d7:e3:89:eb:70:ed:2d: 36:20:1d:d1:86:7c:91:1d:76:c2:06:4a:7a:ce:72: 24:d3:38:08:14:d9:51:83:88:b3:fa:3b:db:e6:ce: 4a:f9:c5:31:40:e1:49:8a:c4:1e:76:e5:78:de:ca: 84:5b:5b:33:a1:1f:04:c4:b0:25:be:a0:7c:cb:77: 6f:1e:3a:c6:14:66:1d:48:db:cb:e6:71:e3:e4:c7: c1:b7:5b:6c:8c:00:cc:df:28:b2:19:43:dc:d3:c7: de:fd:3f:77:cd:cd:70:a9:ab:8c:21:25:ab:c6:7c: e9:78:d9:9a:0a:9c:04:25:86:bb:d8:c4:20:bc:69: 0c:cd:a4:88:89:8f:40:4d:b1:cb:11:cb:c4:ef:10: 55:7d:a5:bb:5e:8f:c8:b7:bd:a0:06:4c:25:c3:da: 0c:30:1b:ee:e5:74:a0:dd:e2:60:97:2d:1a:4c:0d: 80:76:c5:0e:3d:a1:07:7e:06:d9:30:d1:6d:03:04: 09:58:1a:34:37:c8:92:ef:72:41:b0:c8:d2:72:cd: 67:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:DB:1E:AB:86:36:38:E5:2D:46:DC:7B:AB:FE:B5:FE:D7:FF:79:D6 X509v3 Authority Key Identifier: keyid:70:CF:5A:C2:61:44:E8:D7:43:B1:52:03:E2:6C:22:04:6F:A2:40:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:9e:c3:95:3f:fe:fd:15:1d:55:05:a7:81:14:4a:d5:33:28: 75:96:71:64:41:73:85:2c:64:9d:98:fb:68:cb:31:0b:b1:fc: 43:4e:4b:c6:4c:8e:fa:74:f8:e1:b1:fc:40:20:6f:8d:82:0c: 6e:b9:e6:02:2d:bc:e9:b8:2a:61:3f:c0:4d:df:b8:dd:7a:70: be:f8:5b:e7:5b:5f:b0:1d:f9:13:d8:4d:a9:b4:94:4e:0b:55: 0a:6e:46:c5:0c:84:07:ae:02:da:8e:f9:de:8f:4f:56:79:54: 51:99:f6:6a:30:b7:e0:f3:cd:04:d0:b4:75:90:2a:cf:8e:69: 57:f8:16:44:a9:0a:75:0d:2d:b0:20:fb:98:50:30:8f:94:61: 81:37:c0:80:d0:93:4d:03:b8:a3:26:a3:00:bb:8c:18:67:ed: df:b4:ed:47:9c:be:2b:85:54:7e:b1:0c:a0:08:ba:dc:48:5a: f3:3f:c9:11:08:27:bf:ac:a8:a0:1e:6b:63:c8:27:97:f3:58: 34:64:63:bb:37:67:69:94:0a:3f:37:7e:dd:a2:71:af:02:f6: db:31:2d:23:f2:04:23:0b:70:c9:47:c9:01:a5:63:8a:f6:a4: c7:e5:dd:02:bd:46:55:06:55:52:98:5c:6e:70:2a:1e:4e:5f: 23:d2:25:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIxMjgxMTAvBgNVBAUTKDcwQ0Y1QUMyNjE0NEU4RDc0M0IxNTIwM0UyNkMyMjA0 NkZBMjQwN0EwHhcNMjQwNTE5MDYxNDA1WhcNMjQwNTI2MDYxNDA1WjAYMRYwFAYD VQQDEw02NjQ5OThhZC03ZjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5wE9GxIQvImji3j4d+RNmEss17ljCFYPVNUJYq+kAW0gmbtrbT/iPXPDJ6lg Q4Dib/MV6tfjietw7S02IB3RhnyRHXbCBkp6znIk0zgIFNlRg4iz+jvb5s5K+cUx QOFJisQeduV43sqEW1szoR8ExLAlvqB8y3dvHjrGFGYdSNvL5nHj5MfBt1tsjADM 3yiyGUPc08fe/T93zc1wqauMISWrxnzpeNmaCpwEJYa72MQgvGkMzaSIiY9ATbHL EcvE7xBVfaW7Xo/It72gBkwlw9oMMBvu5XSg3eJgly0aTA2AdsUOPaEHfgbZMNFt AwQJWBo0N8iS73JBsMjScs1nawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFnbHquG NjjlLUbce6v+tf7X/3nWMB8GA1UdIwQYMBaAFHDPWsJhROjXQ7FSA+JsIgRvokB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjEyOC83QkYyM0FDNERE RTgxMUVEQkY4Qzk3M0FDNEY5QUUwMi9jTTlhd21GRTZOZERzVklENG13aUJHLWlR SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NNOWF3bUZFNk5kRHNWSUQ0bXdpQkctaVFIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjEyOC83QkYyM0FDNERERTgxMUVEQkY4Qzk3M0FDNEY5QUUwMi9jTTlhd21GRTZO ZERzVklENG13aUJHLWlRSG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLnsOVP/79FR1VBaeBFErVMyh1lnFkQXOFLGSdmPtoyzELsfxDTkvG TI76dPjhsfxAIG+NggxuueYCLbzpuCphP8BN37jdenC++FvnW1+wHfkT2E2ptJRO C1UKbkbFDIQHrgLajvnej09WeVRRmfZqMLfg880E0LR1kCrPjmlX+BZEqQp1DS2w IPuYUDCPlGGBN8CA0JNNA7ijJqMAu4wYZ+3ftO1HnL4rhVR+sQygCLrcSFrzP8kR CCe/rKigHmtjyCeX81g0ZGO7N2dplAo/N37donGvAvbbMS0j8gQjC3DJR8kBpWOK 9qTH5d0CvUZVBlVSmFxucCoeTl8j0iUQ -----END CERTIFICATE-----Generated at Sun May 19 08:25:08 2024 by rpki-client on console-ams.rpki-client.org